Luca Deri

5 exploits Active since Jul 2020
CVE-2020-15471 WRITEUP CRITICAL WRITEUP
Ntop Ndpi < 3.2 - Out-of-Bounds Read
In nDPI through 3.2, the packet parsing code is vulnerable to a heap-based buffer over-read in ndpi_parse_packet_line_info in lib/ndpi_main.c.
CVSS 9.1
CVE-2020-15472 WRITEUP CRITICAL WRITEUP
Ntop Ndpi < 3.2 - Out-of-Bounds Read
In nDPI through 3.2, the H.323 dissector is vulnerable to a heap-based buffer over-read in ndpi_search_h323 in lib/protocols/h323.c, as demonstrated by a payload packet length that is too short.
CVSS 9.1
CVE-2020-15473 WRITEUP CRITICAL WRITEUP
Ntop Ndpi < 3.2 - Out-of-Bounds Read
In nDPI through 3.2, the OpenVPN dissector is vulnerable to a heap-based buffer over-read in ndpi_search_openvpn in lib/protocols/openvpn.c.
CVSS 9.1
CVE-2021-36082 WRITEUP HIGH WRITEUP
ntop nDPI 3.4 - Buffer Overflow
ntop nDPI 3.4 has a stack-based buffer overflow in processClientServerHello.
CVSS 8.8
CVE-2025-25066 WRITEUP HIGH WRITEUP
nDPI <4.12 - Buffer Overflow
nDPI through 4.12 has a potential stack-based buffer overflow in ndpi_address_cache_restore in lib/ndpi_cache.c.
CVSS 8.1